Timeout value is ignored in the User-ID Agent when users are added via XML-API
Created On 09/25/18 19:47 PM - Last Modified 12/07/20 23:54 PM
The timeout value is ignored in the User-ID Agent when users are added via XML-API.
User-ID updates sent to the User-ID Agent via XML with a timeout value are not removed from the User-ID Agent when the timeout expires but they are removed on the Palo Alto Networks firewall.
- Windows-based User-ID agent.
- Any version
The User-ID Agent does not proactively time out entries. However, it keeps track of each entry's time-stamp and the timeout value. When the User-ID Agent receives a get-all or query-IP, each entry will be examined and deleted if it has timed out.